projects / platal.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Update core.
[platal.git] / modules / platal.php
CommitLineData
e59506eb 1<?php
2/***************************************************************************
8d84c630 3 * Copyright (C) 2003-2009 Polytechnique.org *
e59506eb 4 * http://opensource.polytechnique.org/ *
5 * *
6 * This program is free software; you can redistribute it and/or modify *
7 * it under the terms of the GNU General Public License as published by *
8 * the Free Software Foundation; either version 2 of the License, or *
9 * (at your option) any later version. *
10 * *
11 * This program is distributed in the hope that it will be useful, *
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
14 * GNU General Public License for more details. *
15 * *
16 * You should have received a copy of the GNU General Public License *
17 * along with this program; if not, write to the Free Software *
18 * Foundation, Inc., *
19 * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
20 ***************************************************************************/
21
5de0b7e1 22function bugize($list)
23{
24 $list = split(',', $list);
25 $ans = array();
26
27 foreach ($list as $bug) {
28 $clean = str_replace('#', '', $bug);
29 $ans[] = "<a href='http://trackers.polytechnique.org/task/$clean'>$bug</a>";
30 }
31
32 return join(',', $ans);
33}
34
35
e59506eb 36class PlatalModule extends PLModule
37{
38 function handlers()
39 {
40 return array(
c9178c75 41 'index' => $this->make_hook('index', AUTH_PUBLIC),
ddb64990 42 'cacert.pem' => $this->make_hook('cacert', AUTH_PUBLIC),
5de0b7e1 43 'changelog' => $this->make_hook('changelog', AUTH_PUBLIC),
44
4da0b8d7 45 // Preferences thingies
bee33d93 46 'prefs' => $this->make_hook('prefs', AUTH_COOKIE),
47 'prefs/rss' => $this->make_hook('prefs_rss', AUTH_COOKIE),
bce2f8eb 48 'prefs/webredirect'
bee33d93 49 => $this->make_hook('webredir', AUTH_MDP),
50 'prefs/skin' => $this->make_hook('skin', AUTH_COOKIE),
4da0b8d7 51
52 // password related thingies
1a5da857 53 'password' => $this->make_hook('password', AUTH_MDP),
54 'tmpPWD' => $this->make_hook('tmpPWD', AUTH_PUBLIC),
55 'password/smtp' => $this->make_hook('smtppass', AUTH_MDP),
8858cfc1 56 'recovery' => $this->make_hook('recovery', AUTH_PUBLIC),
5de0b7e1 57 'exit' => $this->make_hook('exit', AUTH_PUBLIC),
ddb64990 58 'review' => $this->make_hook('review', AUTH_PUBLIC),
58abb43b 59 'deconnexion.php' => $this->make_hook('exit', AUTH_PUBLIC),
e59506eb 60 );
61 }
62
c9178c75 63 function handler_index(&$page)
64 {
ab66bf7f 65 // Include X-XRDS-Location response-header for Yadis discovery
78507d96 66 global $globals;
ab66bf7f
AA		 67 header('X-XRDS-Location: ' . $globals->baseurl . '/openid/idp_xrds');
68
69 // Redirect to the suitable page
cab08090 70 if (S::logged()) {
8b00e0e0 71 pl_redirect('events');
ddb64990
FB		 72 } else if (!@$GLOBALS['IS_XNET_SITE']) {
73 pl_redirect('review');
c9178c75 74 }
c9178c75 75 }
76
5de0b7e1 77 function handler_cacert(&$page)
78 {
ca877168 79 $data = file_get_contents("/etc/ssl/xorgCA/cacert.pem","r");
80 header("Pragma:");
dc41059a 81 header("Set-Cookie:");
82 header("Cache-Control:");
83 header("Expires:");
84 header("Content-Type: application/x-x509-ca-cert");
ca877168 85 header("Content-Length: ".strlen($data));
5de0b7e1 86 echo $data;
87 exit;
88 }
89
90 function handler_changelog(&$page)
91 {
8b1f8e12 92 $page->changeTpl('platal/changeLog.tpl');
5de0b7e1 93
493b6abe 94 $clog = pl_entities(file_get_contents(dirname(__FILE__).'/../ChangeLog'));
8249b26c 95 $clog = preg_replace('/===+\s*/', '</pre><hr /><pre>', $clog);
4e95f720 96 // url catch only (not all wiki syntax)
97 $clog = preg_replace(array(
98 '/((?:https?|ftp):\/\/(?:\.*,*[\w@~%$£µ&i#\-+=_\/\?;])*)/ui',
99 '/(\s|^)www\.((?:\.*,*[\w@~%$£µ&i#\-+=_\/\?;])*)/iu',
100 '/(?:mailto:)?([a-z0-9.\-+_]+@([\-.+_]?[a-z0-9])+)/i'),
101 array(
102 '<a href="\\0">\\0</a>',
103 '\\1<a href="http://www.\\2">www.\\2</a>',
104 '<a href="mailto:\\0">\\0</a>'),
105 $clog);
5de0b7e1 106 $clog = preg_replace('!(#[0-9]+(,[0-9]+)*)!e', 'bugize("\1")', $clog);
9408f155 107 $clog = preg_replace('!vim:.*$!', '', $clog);
02722b9d 108 $clog = preg_replace("!(<hr />(\\s|\n)*)?<pre>(\s|\n)*</pre>((\\s|\n)*<hr />)?!m", "", "<pre>$clog</pre>");
5de0b7e1 109 $page->assign('ChangeLog', $clog);
110 }
111
7927d719 112 function __set_rss_state($state)
113 {
7927d719 114 if ($state) {
115 $_SESSION['core_rss_hash'] = rand_url_id(16);
08cce2ff 116 XDB::execute('UPDATE auth_user_quick
7927d719 117 SET core_rss_hash={?} WHERE user_id={?}',
cab08090 118 S::v('core_rss_hash'), S::v('uid'));
7927d719 119 } else {
08cce2ff 120 XDB::execute('UPDATE auth_user_quick
7927d719 121 SET core_rss_hash="" WHERE user_id={?}',
cab08090 122 S::v('uid'));
123 S::kill('core_rss_hash');
7927d719 124 }
125 }
126
e59506eb 127 function handler_prefs(&$page)
128 {
8b1f8e12 129 $page->changeTpl('platal/preferences.tpl');
46f272fe 130 $page->setTitle('Mes préférences');
e59506eb 131
bee33d93 132 if (Post::has('mail_fmt')) {
5e2307dc 133 $fmt = Post::v('mail_fmt');
e59506eb 134 if ($fmt != 'texte') $fmt = 'html';
08cce2ff 135 XDB::execute("UPDATE auth_user_quick
e59506eb 136 SET core_mail_fmt = '$fmt'
137 WHERE user_id = {?}",
cab08090 138 S::v('uid'));
e59506eb 139 $_SESSION['mail_fmt'] = $fmt;
e59506eb 140 }
141
bee33d93 142 if (Post::has('rss')) {
5e2307dc 143 $this->__set_rss_state(Post::b('rss'));
e59506eb 144 }
e67b4436
VZ		 145
146 # FIXME: this code is not multi-domain compatible. We should decide how
147 # carva will extend to users not in the main domain.
148 $res = XDB::query("SELECT alias
149 FROM aliases
150 WHERE id = {?} AND FIND_IN_SET('bestalias', flags)",
151 S::user()->id());
152 $page->assign('bestalias', $res->fetchOneCell());
e59506eb 153 }
9bae6004 154
bce2f8eb 155 function handler_webredir(&$page)
156 {
8b1f8e12 157 $page->changeTpl('platal/webredirect.tpl');
bce2f8eb 158
46f272fe 159 $page->setTitle('Redirection de page WEB');
bce2f8eb 160
cab08090 161 $log =& S::v('log');
5e2307dc 162 $url = Env::v('url');
bce2f8eb 163
5e2307dc 164 if (Env::v('submit') == 'Valider' and Env::has('url')) {
08cce2ff 165 XDB::execute('UPDATE auth_user_quick
bce2f8eb 166 SET redirecturl = {?} WHERE user_id = {?}',
cab08090 167 $url, S::v('uid'));
732e5855 168 S::logger()->log('carva_add', 'http://'.Env::v('url'));
a7d35093 169 $page->trigSuccess("Redirection activée vers <a href='http://$url'>$url</a>");
5e2307dc 170 } elseif (Env::v('submit') == "Supprimer") {
08cce2ff 171 XDB::execute("UPDATE auth_user_quick
bce2f8eb 172 SET redirecturl = ''
173 WHERE user_id = {?}",
cab08090 174 S::v('uid'));
732e5855 175 S::logger()->log("carva_del", $url);
bce2f8eb 176 Post::kill('url');
a7d35093 177 $page->trigSuccess('Redirection supprimée');
bce2f8eb 178 }
179
08cce2ff 180 $res = XDB::query('SELECT redirecturl
bce2f8eb 181 FROM auth_user_quick
182 WHERE user_id = {?}',
cab08090 183 S::v('uid'));
bce2f8eb 184 $page->assign('carva', $res->fetchOneCell());
e67b4436
VZ		 185
186 # FIXME: this code is not multi-domain compatible. We should decide how
187 # carva will extend to users not in the main domain.
188 $res = XDB::query("SELECT alias
189 FROM aliases
190 WHERE id = {?} AND FIND_IN_SET('bestalias', flags)",
191 S::user()->id());
192 $page->assign('bestalias', $res->fetchOneCell());
bce2f8eb 193 }
194
4da0b8d7 195 function handler_prefs_rss(&$page)
7927d719 196 {
8b1f8e12 197 $page->changeTpl('platal/filrss.tpl');
7927d719 198
5e2307dc 199 $page->assign('goback', Env::v('referer', 'login'));
7927d719 200
5e2307dc 201 if (Env::v('act_rss') == 'Activer') {
7927d719 202 $this->__set_rss_state(true);
a7d35093 203 $page->trigSuccess("Ton Fil RSS est activé.");
7927d719 204 }
7927d719 205 }
206
7c77c3ee 207 function handler_password(&$page)
208 {
84270653
VZ		 209 global $globals;
210
40d428d8 211 if (Post::has('response2')) {
7c77c3ee 212 require_once 'secure_hash.inc.php';
40d428d8 213 S::assert_xsrf_token();
7c77c3ee 214
5e2307dc 215 $_SESSION['password'] = $password = Post::v('response2');
7c77c3ee 216
eaf30d86 217 XDB::execute('UPDATE auth_user_md5
9ffe0e77 218 SET password={?}
219 WHERE user_id={?}', $password,
220 S::v('uid'));
7c77c3ee 221
84270653
VZ		 222 // If GoogleApps is enabled, and the user did choose to use synchronized passwords,
223 // updates the Google Apps password as well.
224 if ($globals->mailstorage->googleapps_domain) {
225 require_once 'googleapps.inc.php';
d56cb887 226 $account = new GoogleAppsAccount(S::user());
f5c4bf30 227 if ($account->active() && $account->sync_password) {
84270653
VZ		 228 $account->set_password($password);
229 }
230 }
231
604dfd58
FB		 232 S::logger()->log('passwd');
233 Platal::session()->setAccessCookie(true);
7c77c3ee 234
8b1f8e12 235 $page->changeTpl('platal/motdepasse.success.tpl');
7c77c3ee 236 $page->run();
237 }
238
8b1f8e12 239 $page->changeTpl('platal/motdepasse.tpl');
c99ef281 240 $page->addJsLink('motdepasse.js');
46f272fe 241 $page->setTitle('Mon mot de passe');
7c77c3ee 242 }
243
1a5da857 244 function handler_smtppass(&$page)
245 {
8b1f8e12 246 $page->changeTpl('platal/acces_smtp.tpl');
46f272fe 247 $page->setTitle('Acces SMTP/NNTP');
eaf30d86 248
8f201b69
FB		 249 $wp = new PlWikiPage('Xorg.SMTPSécurisé');
250 $wp->buildCache();
251 $wp = new PlWikiPage('Xorg.NNTPSécurisé');
252 $wp->buildCache();
1a5da857 253
cab08090 254 $uid = S::v('uid');
5e2307dc 255 $pass = Env::v('smtppass1');
cab08090 256 $log = S::v('log');
1a5da857 257
eaf30d86
PH		 258 if (Env::v('op') == "Valider" && strlen($pass) >= 6
259 && Env::v('smtppass1') == Env::v('smtppass2'))
1a5da857 260 {
08cce2ff 261 XDB::execute('UPDATE auth_user_md5 SET smtppass = {?}
1a5da857 262 WHERE user_id = {?}', $pass, $uid);
a7d35093 263 $page->trigSuccess('Mot de passe enregistré');
732e5855 264 S::logger()->log("passwd_ssl");
5e2307dc 265 } elseif (Env::v('op') == "Supprimer") {
08cce2ff 266 XDB::execute('UPDATE auth_user_md5 SET smtppass = ""
1a5da857 267 WHERE user_id = {?}', $uid);
a7d35093 268 $page->trigSuccess('Compte SMTP et NNTP supprimé');
732e5855 269 S::logger()->log("passwd_del");
1a5da857 270 }
271
eaf30d86 272 $res = XDB::query("SELECT IF(smtppass != '', 'actif', '')
1a5da857 273 FROM auth_user_md5
274 WHERE user_id = {?}", $uid);
275 $page->assign('actif', $res->fetchOneCell());
1a5da857 276 }
277
8858cfc1 278 function handler_recovery(&$page)
279 {
280 global $globals;
281
8b1f8e12 282 $page->changeTpl('platal/recovery.tpl');
8858cfc1 283
284 if (!Env::has('login') || !Env::has('birth')) {
fd8f77de 285 return;
8858cfc1 286 }
287
5e2307dc 288 if (!ereg('[0-3][0-9][0-1][0-9][1][9]([0-9]{2})', Env::v('birth'))) {
a7d35093 289 $page->trigError('Date de naissance incorrecte ou incohérente');
c9110c6c 290 return;
8858cfc1 291 }
c9110c6c 292
293 $birth = sprintf('%s-%s-%s',
5e2307dc 294 substr(Env::v('birth'), 4, 4),
295 substr(Env::v('birth'), 2, 2),
296 substr(Env::v('birth'), 0, 2));
8858cfc1 297
5e2307dc 298 $mailorg = strtok(Env::v('login'), '@');
8858cfc1 299
a7de4ef7 300 // paragraphe rajouté : si la date de naissance dans la base n'existe pas, on l'update
301 // avec celle fournie ici en espérant que c'est la bonne
8858cfc1 302
08cce2ff 303 $res = XDB::query(
8858cfc1 304 "SELECT user_id, naissance
305 FROM auth_user_md5 AS u
3a5c1551 306 INNER JOIN aliases AS a ON (u.user_id=a.id AND type != 'homonyme')
8858cfc1 307 WHERE a.alias={?} AND u.perms IN ('admin','user') AND u.deces=0", $mailorg);
308 list($uid, $naissance) = $res->fetchOneRow();
309
310 if ($naissance == $birth) {
8c28edc9 311 $res = XDB::query("SELECT COUNT(*)
312 FROM emails
313 WHERE uid = {?} AND flags != 'panne' AND flags != 'filter'", $uid);
314 $count = intval($res->fetchOneCell());
315 if ($count == 0) {
316 $page->assign('no_addr', true);
317 return;
318 }
319
8858cfc1 320 $page->assign('ok', true);
321
eaf30d86
PH		 322 $url = rand_url_id();
323 XDB::execute('INSERT INTO perte_pass (certificat,uid,created)
a4d5829b 324 VALUES ({?},{?},NOW())', $url, $uid);
325 $res = XDB::query('SELECT email
326 FROM emails
327 WHERE uid = {?} AND email = {?}',
328 $uid, Post::v('email'));
329 if ($res->numRows()) {
330 $mails = $res->fetchOneCell();
331 } else {
332 $res = XDB::query('SELECT email
333 FROM emails
334 WHERE uid = {?} AND NOT FIND_IN_SET("filter", flags)', $uid);
335 $mails = implode(', ', $res->fetchColumn());
336 }
1e33266a 337 $mymail = new PlMailer();
1d55fe45 338 $mymail->setFrom('"Gestion des mots de passe" <support+password@' . $globals->mail->domain . '>');
8858cfc1 339 $mymail->addTo($mails);
340 $mymail->setSubject('Ton certificat d\'authentification');
341 $mymail->setTxtBody("Visite la page suivante qui expire dans six heures :
342{$globals->baseurl}/tmpPWD/$url
343
e887e90d 344Si en cliquant dessus tu n'y arrives pas, copie intégralement l'adresse dans la barre de ton navigateur. Si tu n'as pas utilisé ce lien dans six heures, tu peux tout simplement recommencer cette procédure.
8858cfc1 345
eaf30d86 346--
8858cfc1 347Polytechnique.org
a7de4ef7 348\"Le portail des élèves & anciens élèves de l'Ecole polytechnique\"
8858cfc1 349
faefdbb7 350Email envoyé à ".Env::v('login') . (Post::has('email') ? "
a4d5829b 351Adresse de secours : " . Post::v('email') : ""));
8858cfc1 352 $mymail->send();
353
354 // on cree un objet logger et on log l'evenement
cf40e1ae 355 S::logger(uid)->log('recovery', $mails);
8858cfc1 356 } else {
a7d35093 357 $page->trigError('Les informations que tu as rentrées ne permettent pas de récupérer ton mot de passe.<br />'.
3a5c1551 358 'Si tu as un homonyme, utilise prenom.nom.promo comme login');
8858cfc1 359 }
8858cfc1 360 }
361
6c49d0af 362 function handler_tmpPWD(&$page, $certif = null)
363 {
84270653 364 global $globals;
08cce2ff 365 XDB::execute('DELETE FROM perte_pass
6c49d0af 366 WHERE DATE_SUB(NOW(), INTERVAL 380 MINUTE) > created');
367
08cce2ff 368 $res = XDB::query('SELECT uid FROM perte_pass WHERE certificat={?}', $certif);
6c49d0af 369 $ligne = $res->fetchOneAssoc();
370 if (!$ligne) {
8b1f8e12 371 $page->changeTpl('platal/index.tpl');
6c49d0af 372 $page->kill("Cette adresse n'existe pas ou n'existe plus sur le serveur.");
373 }
374
375 $uid = $ligne["uid"];
376 if (Post::has('response2')) {
5e2307dc 377 $password = Post::v('response2');
08cce2ff 378 XDB::query('UPDATE auth_user_md5 SET password={?}
6c49d0af 379 WHERE user_id={?} AND perms IN("admin","user")',
380 $password, $uid);
08cce2ff 381 XDB::query('DELETE FROM perte_pass WHERE certificat={?}', $certif);
84270653
VZ		 382
383 // If GoogleApps is enabled, and the user did choose to use synchronized passwords,
384 // updates the Google Apps password as well.
385 if ($globals->mailstorage->googleapps_domain) {
386 require_once 'googleapps.inc.php';
d56cb887 387 $account = new GoogleAppsAccount(User::getSilent($uid));
f5c4bf30 388 if ($account->active() && $account->sync_password) {
84270653
VZ		 389 $account->set_password($password);
390 }
391 }
392
cf40e1ae 393 S::logger($uid)->log("passwd", "");
8b1f8e12 394 $page->changeTpl('platal/tmpPWD.success.tpl');
6c49d0af 395 } else {
8b1f8e12 396 $page->changeTpl('platal/motdepasse.tpl');
c99ef281 397 $page->addJsLink('motdepasse.js');
6c49d0af 398 }
6c49d0af 399 }
400
9bae6004 401 function handler_skin(&$page)
402 {
403 global $globals;
404
8b1f8e12 405 $page->changeTpl('platal/skins.tpl');
46f272fe 406 $page->setTitle('Skins');
9bae6004 407
a7de4ef7 408 if (Env::has('newskin')) { // formulaire soumis, traitons les données envoyées
08cce2ff 409 XDB::execute('UPDATE auth_user_quick
63528107 410 SET skin={?} WHERE user_id={?}',
5e2307dc 411 Env::i('newskin'), S::v('uid'));
92e6a287 412 S::kill('skin');
47fa97fe 413 Platal::session()->setSkin();
9bae6004 414 }
415
92e6a287 416 $res = XDB::query('SELECT id FROM skins WHERE skin_tpl={?}', S::v('skin'));
417 $page->assign('skin_id', $res->fetchOneCell());
418
9bae6004 419 $sql = "SELECT s.*,auteur,count(*) AS nb
420 FROM skins AS s
421 LEFT JOIN auth_user_quick AS a ON s.id=a.skin
422 WHERE skin_tpl != '' AND ext != ''
423 GROUP BY id ORDER BY s.date DESC";
a3afa47c 424 $page->assign('skins', XDB::iterator($sql));
9bae6004 425 }
4da0b8d7 426
5de0b7e1 427 function handler_exit(&$page, $level = null)
428 {
cab08090 429 if (S::has('suid')) {
e74411f7 430 $suid = S::v('suid');
431 $log = S::v('log');
ae277b9f 432 S::logger()->log("suid_stop", S::user()->login() . " by " . $suid['hruid']);
47fa97fe 433 Platal::session()->stopSUID();
ae277b9f 434 pl_redirect('admin/user/' . S::user()->login());
5de0b7e1 435 }
436
437 if ($level == 'forget' || $level == 'forgetall') {
604dfd58 438 Platal::session()->killAccessCookie();
5de0b7e1 439 }
440
441 if ($level == 'forgetuid' || $level == 'forgetall') {
604dfd58 442 Platal::session()->killLoginFormCookies();
5de0b7e1 443 }
444
130b8708 445 if (S::logged()) {
59bec5bc
FB		 446 S::logger()->log('deconnexion', @$_SERVER['HTTP_REFERER']);
447 Platal::session()->destroy();
130b8708 448 }
5de0b7e1 449
450 if (Get::has('redirect')) {
5e2307dc 451 http_redirect(rawurldecode(Get::v('redirect')));
5de0b7e1 452 } else {
8b1f8e12 453 $page->changeTpl('platal/exit.tpl');
5de0b7e1 454 }
5de0b7e1 455 }
ddb64990
FB		 456
457 function handler_review(&$page, $action = null, $mode = null)
458 {
78507d96
AA		 459 // Include X-XRDS-Location response-header for Yadis discovery
460 global $globals;
461 header('X-XRDS-Location: ' . $globals->baseurl . '/openid/idp_xrds');
462
460d8f55 463 $this->load('review.inc.php');
ddb64990
FB		 464 $dom = 'Review';
465 if (@$GLOBALS['IS_XNET_SITE']) {
466 $dom .= 'Xnet';
467 }
8f201b69
FB		 468 $wp = new PlWikiPage($dom . '.Admin');
469 $conf = explode('%0a', $wp->getField('text'));
6d20fb1d 470 $wiz = new PlWizard('Tour d\'horizon', PlPage::getCoreTpl('plwizard.tpl'), true);
ddb64990
FB		 471 foreach ($conf as $line) {
472 $list = preg_split('/\s*[*|]\s*/', $line, -1, PREG_SPLIT_NO_EMPTY);
473 $wiz->addPage('ReviewPage', $list[0], $list[1]);
474 }
475 $wiz->apply($page, 'review', $action, $mode);
476 }
e59506eb 477}
478
a7de4ef7 479// vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
e59506eb 480?>
plat/al